CVE-2016-2972

7.8HIGH

Key Information:

Vendor: IBM
Status: Sametime
Vendor: CVE Published:; 29 August 2017

Summary

IBM Sametime Meeting Server 8.5.2 and 9.0 could store credentials of the Sametime Meetings user in the local cache of their browser which could be accessed by a local user. IBM X-Force ID: 113855.

Affected Version(s)

Sametime 8.5.2

Sametime 8.5.2.1

Sametime 9.0

References

http://www.securityfocus.com/bid/100599

vdb-entryx_refsource_BID

https://exchange.xforce.ibmcloud.com/vulnerabilities/113855

x_refsource_MISC

http://www.securitytracker.com/id/1039231

vdb-entryx_refsource_SECTRACK

CVSS V3.1

Score:

7.8

Severity:

HIGH

Confidentiality:

High

Integrity:

High

Availability:

High

Attack Vector:

Local

Attack Complexity:

Low

Privileges Required:

Low

User Interaction:

None

Scope:

Unchanged

Timeline

Vulnerability published
Aug 29, 2017
Vulnerability Reserved
Mar 9, 2016